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(57) Abstract: A facility for automatically accessing infonnation and/or services on a computer network is described. Hie facility 
transmits a request for infonnation and/or services by reading a unique code off of a computer-readable medium, and transmitting 
the unique code to a server computer using a network-enabled device. In response to receiving the unique code, the server con^uter 
retrieves selected data from a database table, the selected data being linked to the unique code in the database table. The selected 
data is then provided to the netwoik-enabled device. In one embodiment, the selected data can include a web site or an application 
program. In another embodiment, the selected data can include a URL. When a URL is provided to the network-enabled device, the 
facility can launch a browser program on the netwoxk-enabled device to retrieve die information and/or services associated with the 
URL. 
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iMETHODS AND SYSTEMS FOR ACCESSING INFORMATION AND 
SERVICES ON A COMPUTER NETWORK 

TECHNICAL FIELD 

The present invention is directed to the field of electronic commerce 
and, more particularly, to methods and systems for marketing products and services 
using a computer network. 

BACKGROUND 

Because it facilitates electronic communications between vendors and 
purchasers, the Internet is increasingly being used to conduct "electronic 
commerce/' The Internet comprises a vast number of computers and computer 
networks that are interconnected through communication channels. Electronic 
commerce refers generally to commercial transactions that are at least partially 
conducted using the computer systems of the parties to the transactions. For 
example, a purchaser can use a personal computer to connect via the Internet to a 
vendor's computer. The purchaser can then interact with the vendor's computer to 
conduct the transaction. Although many of the commercial transactions that are 
performed today could be performed via electronic commerce, the acceptance and 
widespread use of electronic commerce depends, in large part, upon the ease-of-use 
of conducting such electronic commerce. If electronic commerce can be easily 
conducted then even the novice computer user will choose to engage in electronic 
commerce. Therefore, it is important that techniques be developed to facilitate 
conducting electronic commerce. 

The Internet facilitates conducting electronic commerce, in part, 
because it uses standardized techniques for exchanging information. Many 
standards have been established for exchanging information over the Internet, such 
as electronic mail. Gopher, and the World Wide Web ("WWW"). The WWW 
service allows a server computer system (/.e., web server or web site) to send 
graphical web pages of information to a remote cieift computer system. The remote 
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client computer system can then display the web pages. Each resource (e.g., 
computer or web page) of the WWW is uniquely identifiable by a Uniform 
Resource Locator ("URL"). To view a specific web page, a client computer system 
specifies the URL for that web page in a request (e.g., a HyperText Transfer 
Protocol ("HTTP") request). The request is forwarded to the web server that 
supports that web page. When that web server receives the request, it sends the 
requested web page to the client computer system. When the client computer 
system receives that web page, it typically displays the web page using a browser. 
A browser is typically a special-purpose apphcation program that effects the 
requesting of web pages and the displaying of web pages. 

The World Wide Web portion of the Internet is especially conducive 
to conducting electronic commerce. Many web servers have been developed 
through which vendors can advertise and sell products. The products can include 
items (e.g., music) that are delivered electronically to the purchaser over the Internet 
and items (e.g., books) that are delivered through conventional distribution chaimels 
(e.g., a common carrier). A server computer system may provide an electronic 
version of a catalog that lists the items that are available. A user, who is a potential 
purchaser, may browse through the catalog using a browser and select various items 
that are to be purchased. When the user has completed selecting the items to be 
purchased, the server computer system then prompts the user for information to 
complete the ordering of the items. This purchaser-specific order information may 
include the purchaser's name, the purchaser's payment information (e.g., credit card 
number), and a shipping address for the order. The server computer system then 
typically confirms the order by sending a confirming web page to the client 
computer system and schedules shipment of the items. 

Along with the explosive growth of the Internet and the World Wide 
Web, users are finding it more and more difficult to easily locate desired 
information and conduct electronic commercial transactions. Complicated URL 
addresses, layers of topic sub-menus, and search engines that produce thousands of 
web sites per search, are making use of the Internet less fiiendly and more time 
consuming. Similarly, some aspects of electronic commerce (e.g., cyber cash and 
online shopping), where transactions happen "automatically" in cyberspace and thus 
beyond the user's consent or control, leave the user with a sense of loss of control. 
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In order to view and navigate web sites on the Internet using an 
Internet-enabled device such as a personal computer, a user typically must use a 
modem to dial in to an ISP (Internet service provider), and then start up an Internet 
browser program. To reach a desired web site, the user may type in a specific URL 
address in the "address" box of the browser program, or use a search engine and 
click on the selection found to be most appropriate. When typing in a new URL 
address, the user will have made the effort to either write down or memorize the 
URL address, and then correctly type the address into the "address" box without 
syntax or spelling errors. Both activities are troublesome, time consuming, and 
prone to human error. Failure to accomplish both correctly, however, will lead to a 
failed search or arrival at an undesired web site. 

Similarly, when using a search engine to reach a desired web site, the 
user types in a word or words of an item or topic for which the user wdshes to 
search. The search engine will use the word or words specified, regardless of 
context, to generate a result from the engine's scans of the entire Internet. As there 
are million of web sites around the world, this search often results in thousands of 
options for a given search. The user is thus overloaded with seemingly appropriate 
options and often is unable to discover the actual web site that the user was truly 
searching for. 

The shortcomings associated with searching for information or 
services on the Internet using the customary methods of typing in URL addresses or 
scanning search engine results often discourages users to the point of aborting their 
search. Thus, it would be desirable to have a system that simplifies access to 
information or services on the Internet by allowing the user to automatically and 
quickly go to precisely the web site desired. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Figure 1 is a schematic diagram illustrating components of an access 
system in one embodiment. 

Figure 2 is a flow diagram of a routine perfoimed by application 
software for retrieving information and/or services from a server computer using the 
access system in one embodiment. 
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Figure 3 is a flow diagram of a routine performed on a server 
computer for responding to a unique transaction code ("UTC") request in one 
embodiment. 

Figure 4 is a flow diagram of a routine performed by application 
software for selecting between launching a local application or retrieving a URL 
from a remote server computer, in another embodiment. 

Figuxe 5 is a schematic diagram illustrating the assembly of a unique 
10-b5^e RF reader code in one embodiment. 

Figure 6 is a schematic diagram illustrating the assembly of a UTC in 
one embodiment. 

Figure 7 is a flow diagram of a routine performed on a server 
computer for communicating with a network-enabled device in a secure mode in 
one embodiment. 

Figure 8 is a flow diagram of a routine performed on a user network- 
enabled device for communicating with a server computer in a secure mode in one 
embodiment. 

Figure 9 is a flow diagram of a routine performed by application 
software for retrieving information and/or services from a server computer using the 
access system in one embodiment. 

Figure 10 is a schematic diagram illustrating the assembly of an RF 
reader code in an alternative embodiment. 

Figure 1 1 is a schematic diagram illustrating the assembly of a 
registration RF tag code in an alternative embodiment. 

Figure 12 is a schematic diagram illustrating the assembly of a new 
user command code in an alternate embodiment. 

Figure 13 is a schematic diagram illustrating the assembly of a UTC in 
an alternate embodiment. 

Figure 14 is a schematic diagram illustrating the assembly of a unique 
64-bit RF tag code in one embodiment. 

Figure 15 is a schematic diagram illustrating the assembly of a unique 
256-bit RF tag code in one embodiment. 
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DETAILED DESCRIPTION OF THE ILLUSTRATED EMBODIMENTS 



Methods and systems for simplifying a user's access to resources on 
the Internet are provided. The access system allows a user to view a web page, 
download content (including streaming audio and video content), conduct a 
commercial transaction, or perform virtually any other Internet related activity by 
placing a computer-readable medium, such as a radio-frequency identification tag 
("RF tag"), in the proximity of a computer-readable medium reader, such as a radio- 
frequency read/write device ("RF reader"), that communicates with the user's 
network-enabled device such as a computer. The user can obtain the desired 
information and/or service without having to search for the appropriate web site and 
without having to key the exact URL into the address box of a browser program. 
One skilled in the art would appreciate that the computer-readable medium may 
include a magnetic medium, any laser-readable medium, and so on. 

In one embodiment, an RF tag and RF reader are each encoded with 
unique codes that are also stored in a system server computer and entered into a 
look-up database table that links each unique code with a specific application, 
server, or web site URL. The RF tag can be embedded in a token, financial 
instrument consumer product, promotional item, and so on for distributing to a 
consumer/user via a purchased product, advertising, or promotional activity. 
Similarly, an RF reader can be given to users as a promotional item or it can be 
purchased by the user. Application software loaded on a network-enabled device of 
the user interfaces with the RF reader. Like the RF tag and RF reader, this 
application software can be purchased by the user or distributed {e.g., via the 
Internet) to the user for free as a promotional item. 

When the user wants to access resources such as information or 
services on a desired web site using the access system, the user places an 
appropriate RF tag in the proximity of the RF reader. The RF reader reads the 
unique code off of the RF tag, and sends the RF tag's unique code and, in one 
embodiment, the RF reader's code to the user's network-enabled device via a wired 
or wireless connection. The application software running on the user's network- 
enabled device receives the two imique codes and combines them into a single 
unique transaction code (UTC). The application software then establishes access to 
the Internet or other suitable computer network, and sends the UTC via the network 

-5- 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 PCTAJSOO/32798 

to the system server computer having the look-up database tables that map the code 
(i.e., the unique codes from the RF tag and the RF reader) to a specific application, 
server, or web site URL. 

The system server computer then extracts the RF tag's unique code 
from the UTC and matches it against the codes in the look-up database tables. 
When the RF tag's unique code is found, the system server computer sends, in one 
embodiment, the URL associated with that unique code to the application software 
on the user's network -enabled device. The appUcation software receives this URL 
and directs a browser program on the network-enabled device to retrieve the 
information (e.g., web page) or application associated with the URL. Once 
retrieved, the user is able to use the information or run the application to view the 
information, perform a desired commercial transaction, or any other activity. 

The access system can be used in various embodiments to provide the 
user with easy access to information or services. For example, the RF tag can be 
encoded with a unique code that, rather than access a URL via a remote server 
computer, simply initiates a local application on the user's network-enabled device. 
Alternatively, a "simple RF tag" can be encoded with a unique code that contains a 
specific URL. In this embodiment, the simple RF tag is placed in the proximity of 
the RF reader, and the reader reads the URL off of the RF tag and transmits this 
URL to the application software on the user's network-enabled device. The 
application software then launches a browser program with the URL and retrieves 
the associated content or application for the user to view, download, or otherwise 
interact with. In the "simple RF tag" embodiment, there is no need for the 
application software to first access the system server computer to retrieve the URL, 
as the URL is encoded directly into the RF tag. 

RF tags can also be encoded with unique codes that cause the system 
server computer to perform transactions in a secure mode. In secure embodiments, 
the RF tag's unique code is linked to a security routine of the system server 
computer. The security routine directs the system server computer to request that 
the application software send it a password encoded on the RF tag. In one 
embodiment, this can be a 32-bit password, in other embodiments, the password can 
contain more or less than 32 bits of information. After the system server computer 
receives the password from the application software and checks it for authenticity, 
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the transaction is allowed to proceed and, in one embodiment, the system server 
computer sends a new password back to the application software. The application 
software can then direct the RF reader to write (assuming write capability) this new 
password onto the RF tag. The new password can then be used in subsequent 
secured transactions. 

In an alternate embodiment, a remote web server computer that 
receives a URL request fi-om the application software can perform a secure 
password exchange routine that is substantially similar to the routine discussed 
above with reference to the system server computer. In this embodiment, the web 
server computer would request the application software send it the 32-bit password 
encoded on the RF tag for verification of authenticity. After verification, the web 
server computer could send a new password back to the application software. The 
application software can then direct the RF reader to write (assuming write 
capability) this new password onto the RF tag. The new password can then be used 
in subsequent secured transactions. All password exchange communications 
between the appUcation software and server computers can be in secure mode {e.g., 
SSL, PCT, or TLS). 

Although not required, embodiments of the access system will be 
described in the general context of computer executable instructions, such as 
routines executed by a general-purpose computer, such as a personal computer. 
Those skilled in the art will appreciate that the access system can be practiced with 
other computer system configurations, including Internet appliances, hand-held 
devices, multiprocessor systems, microprocessor-based or programmable consimier 
electronics, network PCs, mini-computers, mainftame computers, and the like. The 
access system can be embodied in a special-purpose computer or data processor that 
is specifically programmed, configured or constructed to perform one or more of the 
computer-executable instructions explained in detail below. The access system can 
also be implemented in distributed computing environments where tasks or modules 
are performed by remote processing devices, which are linked through a wired or 
wireless communications network. In a distributed computing environment, 
program modules or subroutines may be located in both local and remote memory 
storage devices. 
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Figure 1 is a schematic diagram illustrating components of an access 
system in one embodiment. An access system 100 includes a uniquely coded radio- 
frequency identification tag 110 ("RF tag 110"), and a uniquely coded radio- 
frequency read/write device 120 ("RF reader 120"). The RF reader 120 is capable 
of reading the unique radio-frequency code off of the RF tag 110, and writing 
information to the RF tag 110. In one aspect of this embodiment, the RF reader can 
be masked to only read RF codes off selected RF tags, in this way preventing the 
use of unauthorized or copied RF tags. The RF reader 120 transmits the RF tag's 
unique code, and its own unique code, to a user network-enabled device 130 ("user 
computer 130"). In one embodiment, the unique codes are transmitted to the user 
computer 130 via a wired connection. In one aspect of this embodiment, the RF 
reader connects to the user computer via a Universal Serial Bus (USB), and 
connects to the USB host as a Human Input Device (HID Class). Alternatively, the 
wired connection can be IEEE 1394, DVI, or PS/2. In another embodiment, the 
unique codes are transmitted via a wireless connection. In one aspect of this 
embodiment, the wireless connection can be infrared (e.g., IrDA), or radio 
frequency {e.g., Bluetooth or HomeRF). 

In other embodiments, the RF tag can be replaced by a suitable tag 
that uses a magnetic strip (such as a credit card), a bar code, or odier method of 
encoding a computer readable medium. Accordingly, the RF reader can be replaced 
by a device suitable for reading and writing to the corresponding tag embodiment. 

The user computer 130 may include one or more central processing 
units or other logic processing circuitry, memory, input devices (e.g., keyboards and 
pointing devices), output devices {e.g,, display devices and printers), and storage 
devices {eg, fixed, floppy and optical disk drives), all well known but not shown in 
Figure 1. The user computer 130 may include a browser program module 134 
("browser 134") that allows the user computer 130 to access and exchange data with 
a computer network 140, including web sites within the World Wide Web portion 
of the Internet. The user computer 130 also includes an application software module 
132 that performs the functions of reading the unique RF codes of the RF tag 110 
and RF reader 120, writing information to the RF tag 110, and other routines 
associated with accessing information and services off of the computer network 
140, as described in fiirther detail below. 
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As best seen in Figure 1, the user computer 130 is connected via the 
computer network 140 to a system server computer 150 and a web server computer 
160. The system server computer 150 performs many of the processes associated 
with the access system 100, and includes a look-up database table 152 that stores 
the unique codes from the RF tag 1 10 and RF reader 120. The look-up database 
table 152 maps each specific unique code to a specific apphcation, server computer, 
or web site URL that is accessed via the computer network 140. One skilled in the 
art will appreciate that mapping techniques other than a look-up table can be used. 
The system server computer 150 also includes a server engine 151, a database 
management component 153, a web page database 154, a notification process 
component 156, and a transaction database 158, as well as other components not 
shown in Figure 1. 

The web server computer 160 includes a server engine 161, a database 
management component 163, and a web page database 164, as well as other 
components not shown in Figure 1. The web server computer 160 can store content 
and applications and distribute them via the computer network 140 to the user 
computer 130. The content can be in audio, video, or graphical format and the 
applications can perform commercial transactions or data management functions. 

One skilled in the art will appreciate that concepts of the access 
system can be used in various environments other than the Internet or computer 
network environment depicted in Figure 1. For example, the concepts can also be 
used in electronic mail environments in which the electronic mail messages may 
include the equivalent of a unique RF code, or an associated web page or URL. In 
one aspect of this embodiment, the information the user retrieves can be presented 
to the user as an email message, or as an email message with a hyperlink to a web 
site. Various communication channels other than the Internet may also be used, 
such as a local area network, a wide area network, or a point-to-point dial-up 
connection. Concepts of the access system may also be used in a single computer 
environment rather than a user/server environment. In addition, the system server 
computer 150 may comprise any combination of hardware or software that can 
support these concepts. In particular, the access system server computer 150 may 
actually include multiple computers. Similarly, the user network-enabled device 
130 may comprise any combination of hardware or software that interacts with the 
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system server computer 150 to perform the concepts of the access system disclosed 
herein. This user device may include television-based systems, and various other 
consumer products through which web pages may be accessed. For example, 
computer-readable medium may be a device that sends its unique code as a 
telephonic tone when activated. The code may identify a web page and be used by 
a web-enabled phone to retrieve and display the web page. 

Figure 2 is a flow diagram of a routine 200 performed by the 
application software 132 for retrieving inforaiation and/or services from a server 
computer using the access system 100 in one embodiment. In block 202, the routine 
200 checks for the presence of the RF tag 110 in the proximity of the RF reader 
120. In decision block 204, if the RF tag 1 10 is not presently in the proximity of the 
RF reader 120, the routine 200 continues to check for the presence of an RF tag. If 
the RF tag 1 10 is in the proximity, then the routine 200 obtains the RF tag's unique 
code firom the RF reader 120, as shown in block 206. One skilled in the art would 
appreciate that this routine could be invoked when, or wait for, an event to be 
generated indicated that the RF tag is in proximity of RF reader. In block 208, the 
routine 200 obtains the RF reader's unique code from the RF reader 120 as well. In 
block 210, the routine 200 combines the unique codes from the RF tag 110 and the 
RF reader 120 and creates a unique transaction code (UTC). In block 212, the 
routine 200 establishes a connection to the computer network 140 and sends the 
UTC via the computer network 140 to the system server computer 150. The routine 
200 then receives a corresponding URL back from the system server computer 150 
via the computer network 140, as shown in block 214. In block 216, the routine 200 
launches the browser 134 with the URL received from the system server computer 
150. In an alternate embodiment of block 216, the routine 200 can launch a local 
application program received from the system server computer 150 instead of the 
URL received in block 214. After performing block 216, the routine 200 loops to 
block 202 to wait for an RF tag. 

In a separate routine not shov^ but well knovm in the relevant art, the 
browser 134 in block 216 sends the URL via the computer network 140 to the web 
server computer 160. The web server computer 160 responds by sending the 
appropriate web page back to the browser 134, which the browser 134 will then 
display on the user computer 130. In other aspects of this embodiment, the web 

-10- 



SUBSTUUTE SHEET (RULE 26) 



wo 01/50224 



PCT/USOO/32798 



server computer 160 can send audio or video content, or web pages foimatted for 
commercial transactions or data management, to the browser 134. 

In addition to performing the routine 200, the application software 
132 can also include a routine or routines that allow a user to use the access system 
without having to place an actual RF tag in the proximity of the RF reader. For 
example, when an RF tag is first used, the server computer can provide a bitmap or 
code to the application software 132 for creating a graphic image of the RF tag on 
the user's network-enabled device. The application software 132 can then use the 
code in a directory routine that compiles, sorts, and displays a user's RF tags on the 
user's network-enabled device based on information contained in the RF tag's 
unique RF identification code. The RF tags can be sorted into different fields by 
different criteria, such as the shape of the RF tag, application type, date the RF tag 
was first used, color of the RF tag, etc. Once an RF tag's data has been stored in the 
directory, the RF tag can be graphically presented as a "virtual" RF tag and 
displayed on the user's network-enabled device. The user can then start a 
transaction as if the "real" RF tag was being used simply by "clicking on" the 
virtual RF tag in the directory. 

In a similar way, the server computer can also provide the application 
software 132 with an audio code for presenting an audible display whenever a 
particular RF tag is used. For example, a theme song or advertising jingle 
associated with a particular product can be audibly displayed when an RF tag 
associated with that product is used. 

The appHcation software 132 can also include its own browser routine 
that can serve as the network navigation program, with pre-installed applications 
that can speed up, facilitate, and/or simplify usage of the access system when linked 
to the computer network 140. In addition to retrieving the desired content firom a 
selected web site URL, the application software can also display a greeting card that 
calls up humorous video clips, digital photo albums, birthday songs, etc. as an 
added dimension of the interactivity offered by the access system. The application 
software 132 can also include other facilities, such as look-up tables that map the 
unique identification codes of the RF tag 110 and RF reader 120 to specific 
applications, servers, or web site URLs. Compilation of user-specific information 
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and data, such as web sites visited, transactions performed, and times used, can also 
be accomplished with the application software 132. 

Figure 3 is a flow diagram of a routine 300 performed by server 
software for responding to a UTC request in one embodiment. In block 302, the 
routine 300 receives a UTC from a resource such as the application software 132. 
In decision block 304, the routine 300 checks the UTC to determine if the UTC is 
valid. If not, the routine 300 sends an error message to the user computer 130, as 
shown in block 310. If the UTC is valid, the routine 300 extracts the RF tag*s 
unique code from the UTC as shown in block 305. In block 306, the routine 300 
retrieves the URL corresponding to this code from the look-up database table 152 of 
the system server computer 150. The routine 300 then sends this URL to the 
resource that sent the UTC, such as the application software 132. The transaction in 
block 307 can be stored in the transaction database 158 of the system server 
computer 150, as shovm in block 308. After performing block 308, the routine 300 
loops to block 302 to receive a UTC. 

In one aspect of this embodiment not shown in Figure 3, the routine 
300 can extract the unique code for the RF reader 120 from the UTC sent to it by 
the application software 132. The routine 300 can then determine if the RF reader 
120 is the most up-to-date version. If not, the routine 300 can send an appropriate 
message to the application software 132 for display to the user that indicates that an 
update to the RF reader 120 is advisable. In a similar process, the routine 300 can 
also check the version of application software 132 running on the user computer 
130, and include a message recommending an update if the application software 132 
is not found to be the most up-to-date version. 

In addition to the routine 300 discussed above, the system server 
computer 150 can also perform other functions. For example, it can keep track of 
all RF tags used by a particular user, and/or record other personal user data. The 
server computer 150 can then organize this user data and perform data mining and 
data analysis operations with the compiled information. This information can then 
be accessed by commercial clients for marketing purposes when the client uses a 
dedicated authorization RF tag. As will be discussed below, the system server 
computer 150 is also able to initiate and terminate secure communications with the 
application software 132 and/or the web server computer 160. Included in the 
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secure functions is the ability to verify the authenticity of the RF tag 1 10 via a 
password encoded on the RF tag, and the ability to provide a new password to be 
written to the RF tag 110 over the original password. In addition, the server 
computer 150 can also act as a host server for specific application web sites that are 
accessed by "simple" unlinked RF tags that are encoded with URLs. 

Figure 4 is a flow diagram of a routine 400 performed by the 
application software 132 for selecting between launching a local application or 
retrieving a URL from a remote server computer, in another embodiment. In one 
aspect of this embodiment, there are three types of RF tags available: a 64-bit type 1 
RF tag, a 256-bit type 2 RF tag, and a 2,048-bit type 3 RF tag. The type 1 RF tag is 
a read-only device without a password that can be used with the computer network 
140 for non-secure applications like retrieving advertising, samplers of audio/video, 
or greeting cards. The type 2 RF tag can be read and written to, and contains a 32- 
bit password. The type 2 RF tag can be used with the computer network 140 for 
secure applications as it cannot be copied and it can only be authenticated by the 
application software 132 conmiunicating with the system server computer 150 
and/or web server computer 160. The type 3 RF tag can be read and written to and 
can be used for performing local applications on the user's network-enabled device 
without using the computer network 140. For example, the type 3 RF tag can be 
used to display content such as a business card. 

Returning to Figxu'e4, in block 401, the application software 132 
obtains the RF tag llO's unique code sent to it by the RF reader 120. In the 
decision block 402, the unique code of the RF tag is checked to determine if the 
type of RF tag is a type 1, type 2 or type 3. If the RF tag is a type 3 RF tag, the 
apphcation software 132 will begin a local application program on the user 
computer 130, as shown in block 404. In this embodiment, access via the computer 
network 140 to a remote server computer is not needed. After completing block 
404, the routine 400 loops to checking for another RF tag in the proximity of the RF 
reader. Alternatively, if the RF tag is either a type 1 RF tag or type 2 RF tag, then 
the application software 132 obtains the unique code associated with the RF reader 
120 as shown in block 406, and proceeds to retrieve a URL from a remote server 
computer in a method that can be similar to routine 200 depicted in Figure 2. 
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In addition to different types of RF tag functionality available, various 
user-interface features can be incorporated into an RF tag and an RF reader. For 
example, the shape of the RF tag, such as a circle, oval, square, rectangle, triangle, 
zigzag, etc. can be mode-specific to a particular application. Or LED lights can be 
incorporated into the RF tag that light-up or flash when the RF tag is in use. 
Similarly, the RF reader can incorporate lights that illuminate to show when it has 
been activated, that a transaction is in progress, that an Internet connection has been 
established, or conversely, that any of the related processes have failed. Soimds can 
also be incorporated to the RF reader to provide similar indications. 

In one aspect of these embodiments, the functionality of the RF reader 
(read/write capability with respect to the RF tag) can be incorporated into various 
peripheral devices conunonly associated with network-enabled devices. For 
example, this functionality can be embedded into a mouse controller, a mouse pad, 
a speaker, a screen monitor, a personal computer, a portable lap top computer, a 
portable electronic organizer, a digital mobile telephone, a portable audio device, a 
portable video device, a set-top box, an audio device, a TV-set, or a CD/DVD 
reader/writer. 

Accessories can also be provided to facilitate use of the access system 
in accordance with the present invention. For example, an RF tag storage device, 
like an accordion file folder, CD-flip rack, or Rolodex, can be provided to organize 
the RF tags. An organizer that organizes the RF tags by shape, application, color, 
date, etc. can also be provided. 

Figure 5 is a schematic diagram illustrating encoding of the RF reader 
120 with a unique 10-byte identification code in one embodiment. The unique 
identification code 502 includes a manufacturer's authorization code portion 508, 
date portion 504, unique ID portion 512, and RF reader type portion 5 14. The date 
portion 504 contains day, month, and year fields as illustrated by blocks 504 and 
506. The unique identification code 502 is generated and authorized by the system 
server computer 150 and is registered as "produced, but not in use yet" on the 
database management component 153 of the system server computer 150. Once an 
RF reader 120 has been used, the registration field will be changed to "in use." In 
one aspect of this embodiment, this registration scheme provides a tracking 
mechanism to prevent unauthorized use of the access system: RF tag readers that 
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use a registration code that is not produced yet will be unauthorized; and RF readers 
that use a code that is already in use (e.g., copies) will also be also unauthorized. 

Figure 6 is a schematic diagram illustrating the assembly of a unique 
transaction code 602 ("UTC 602") by the application software 132 in one 
embodiment. The 160-bit UTC 602 is composed of three unique code portions 604, 
606, and 608. The unique reader code portion 604 is associated with the RF reader 
120 and contains 80 bits of code. The unique RF tag code portion 606 is associated 
with the RF tag 1 10 and contains 64 bits of code. The unique application software 
code portion 608 contains 16 bits of code that denotes the version of application 
software 132 that is rurming on the user computer 130. 

Figure 7 is a flow diagram of a routine 700 performed on a server 
computer for communicating with a network-enabled device in a secure mode in 
one embodiment. The access system can be performed in secure mode if desired to 
protect the interests of the parties involved in the transaction being conducted. In 
one aspect of this embodiment, the routine 700 can run on the system server 
computer 150 (Figure 1). In other embodiments, the routine 700 can run on the web 
server computer 160 (Figure 1). In block 701, the routine 700 receives a UTC. 
Data in the look-up database table 152 of the system server computer 150 
corresponding to the UTC indicates that a secure transaction is required, and the 
routine 700 sets up a secure connection via the computer network 140 (Figure 1), as 
shown in block 702. A conventional method for setting up a secure connection, 
known by those of skill in the art, can be used. In block 704, the routine 700 sends 
an authentication request to the source of the UTC. In response to the 
authentication request, the routine 700 receives a unique serial number and 32-bit 
password taken off of the RF tag 1 10 that initiated the transaction, in block 706. In 
other embodiments, passwords with more or less than 32 bits can be used. The 
serial number and password are checked in decision block 708. If the serial number 
and password do not check out, an error message is retumed, as shown in blocks 
714 and 716. If the serial number and password do check out, then the routine 700 
will look-up and retrieve a URL from the look-up database table 152 corresponding 
to the UTC received in block 701, as shown in block 710. This URL is then sent 
along with a new 32-bit password back to the source of the UTC in block 712. 
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After completing block 712 or 716, routine 700 loops back to block 701 to receive a 
UTC. 

Figxire 8 is a flow diagram of a routine 800 performing a secure 
transaction on a user network-enabled device in one embodiment. In one aspect of 
this embodiment, the routine 800 can be operating in conjunction with the routine 
700 (Figure 7) to receive a URL from a remote server in a secure transaction. In 
block 801, the routine 800 receives a request for authentication from a server 
computer. In block 804, the routine 800 sets up a secure cormection to the server 
computer via the computer network 140. In block 806, the routine 800 obtains the 
unique serial number and 32-bit password of the RF tag 1 10 using the RF reader 
120. The routine 800 then sends tiie unique serial number and 32-bit password to 
the server computer via the computer network 140 using the secure connection, as 
shown in block 808. In block 810, the routine 800 receives an indication from the 
server computer whether or not the serial nimiber and 32-bit password were 
authenticated. If the serial number and password were not authenticated, an error 
message is displayed on the user computer 130 for the user as shown in block 811. 
If the serial number and password are authenticated, then the routine 800 will 
receive a new 32-bit password and the desired URL from the server computer, as 
shown in block 8 12, The routine 800 then writes the new 32-bit password to the RF 
tag 110 using the RF reader 120, as shown in block 814. In block 816, the routine 
800 launches the browser 134 with the URL received in the secure mode from the 
server computer. After perft)rming block 816 or 811, routine 800 loops back to 
block 801 to receive an authentication request from a server. 

Figure 9 is a flow diagram of a routine 900 performed by the 
application software 132 for retrieving information and/or services from a server 
computer using the access system 100 in an alternate embodiment. In this 
embodiment, the RF tag is a "simple RF tag" that is encoded with a URL linking the 
RF tag to a web site that contains the desired information or service. Hence, the 
user computer 130 does not need to access the system server 150 to obtain the URL 
of the desired web site. Instead, the application software 132 simply obtains the 
URL directly from the simple RF tag and uses this URL to launch the browser 
module 134. In block 902, the routine 900 determines if a simple RF tag is in the 
proximity of the RF reader 120. In decision block 904, if the simple RF tag is not in 
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the proximity, the routine 900 continues to check for a tag. If the simple RF tag is 
in the proximity, the routine 900 obtains the URL from the simple RF tag using the 
RF reader 120. The routine 900 then launches the browser 134 with the URL to 
obtain the desired information and/or services from the associated web site, as 
shown in block 908. After completing block 908, routine 900 loops to block 902 to 
wait for an RF tag. 

A number of alternate embodiments of access system components are 
possible without departing from the scope or intent of the basic access system. For 
example, Figure 10 is a schematic diagram illustrating an altemate embodiment of 
an RF reader code. The standard device descriptor 1002 of the RF reader contains, 
two identification code portions that will describe the device, a two-byte product 
identification portion 1004, and a two-byte vendor identification portion 1006. The 
standard device descriptor 1002 will also contain two index code portions, a one- 
byte manufacturer index code portion 1008 will contain information describing the 
manufacturer, and a one-byte product index code portion 1010 will contain 
information about the specific reader. The foregoing altemate reader embodiment 
can be used in conjunction with a special registration RF tag as explained below. 

The access system can use a special registration RF tag to register a 
user when the user enters the access system for the first time. Figure 11 is a 
schematic diagram illustrating a data structure 1100 of a registration RF tag in 
accordance with this embodiment. The data structure 1100 contains an eight-page 
portion 1 102, wherein each page contains 32 bits of information. Page 0 contains a 
32-bit serial number portion 1 104 of the registration RF tag. Page 3 contains a 32- 
bit information portion 1110 that includes an eight-bit configuration portion 1111 
and a 24-bit password portion 1113. The eight-bit configuration portion 1111 
contains a one-bit Manchester code portion 1112, a two-bit RF tag mode portion 
1114, a one-bit password mode portion 1116, and foiu- other bits of read and/or 
vmte information 1118. 

To use the registration RF tag, the user installs the application 
software on a network-enabled device and connects an RF reader to the network- 
enabled device. The application software then asks the user to place the registration 
RF tag in the proximity of the RF reader. After the user has done this, the 
application software creates a "new user conunand" to send to the system server 
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computer. Figure 12 is a schematic diagram illustrating a new user command data 
structure 1200 in accordance with this embodiment. The new user command data 
structure 1200 has a 16-bit product identification portion 1202, a 16-bit vendor 
identification portion 1204, an eight-bit manufacturer information portion 1206, and 
a 16-bit application software version portion 1208. The 16-bit product 
identification portion 1202, the 16-bit vendor identification portion 1204, and the 
eight-bit manufacturer information portion 1206, all come from the code stored on 
the RF reader and are equivalent to the product identification portion 1004, Ae 
vendor identification portion 1006, and the manufacturer information portion 1008, 
respectively, shown in Figure 10 with respect to the RF reader. The 16-bit software 
version portion 1208 is provided by the application software. Once the application 
software has created the new user command data structure 1200, the application 
software sends this command and 32-bit registration number from the registration 
RF tag to the system server computer. The registration number of the registration 
RF tag is the 32-bit serial number portion 1104 of the registration RF tag data 
structure 1 102, as shown in Figure 11. 

When the system server computer receives the new user command and 
the RF tag registration number, it will validate the RF tag registration number and 
the reader and application software information in the new user command. If the 
inforaiation received by the server computer is validated, the server computer will 
send a URL of a registration site back to the application software. The application 
software will then direct a browser program to access the registration site using the 
URL. The accessed registration application will guide the user through the 
registration process by directing the user to fill in a web-based screen. In one aspect 
of this embodiment, the web page will offer three levels of registration to the user: 
Level 1 will be the minimum required information and will require only the name, 
gender, birthday, and email address of the user; Level 2 will additionally request the 
address of the user; and Level 3 will also request the marital status, educational 
degree, occupation, income, and phone number of the user. Once the user has 
registered, the server computer will send a confirmation back to the application 
software. The application software will then locally store the registration RF tag's 
registration number, which can also be referred to as a "user registration number^' . 
When new RF tags are subsequently used with the access system, this user 
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registration number can be retrieved from local storage for assembly of a unique 
transaction code (UTC). 

In addition to the alternate embodiments of the RF reader and RF tag 
explained in the foregoing paragraphs, the access system can also include altemate 
embodiments of the unique transaction code (UTC). In one such altemate 
embodiment, to begin using the access system, a user will start by placing an 
appropriate RF tag in the proximity of an RF reader. The RF reader reads the 
unique code off of the RF tag and sends the RF tag's imique code, and the RF 
reader's code, to the user's network-enabled device via a wired or wireless 
connection. The application software running on the user's network-enabled device 
receives the RF tag's unique code and the reader's code and combines them v^dth the 
application software version code and, in this altemate embodiment, the user's 
registration number that has been locally stored on the user's network enabled 
device, to create a UTC. 

Figure 13 is a schematic diagram illustrating the assembly of a UTC 
1302 in accordance with the altemate method described in the preceding paragraph. 
The 128-bit UTC 1302 is composed of four code portions, a 16-bit reader 
identification portion 1304, a 32-bit user registration number portion 1306, a 64-bit 
unique RF tag code portion 1308, and a 16-bit application software version code 
portion 1310. The 16-bit reader identification code portion 1304 comes from the 
reader code, and is equivalent to the product identification portion 1004 as shown in 
Figure 10. The user registration number portion 1306 is the 32-bit serial number 
portion 1104 which originally came from the registration RF tag shovm in Figure 
11, and is subsequently stored on the user's network enabled device. The unique 
64-bit RF tag code portion 1308 is taken from the particular RF tag that happens to 
be in use. 

After creating the UTC, the application software establishes access to 
the Internet or other suitable computer network and sends the UTC via the network 
to the system server computer. Using a double look-up table format, the server 
computer will extract the user registration number 1306 from the UTC and 
authenticate the user's registration. If the user is validly registered, the server 
computer will access the second look-up table, extract the RF tag's unique code 
from the UTC, and compare the RF tag's unique code to the look-up table. The 
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URL or application associated with the RF tag's unique code is then sent back to the 
application software. Once the application software receives the URL, the 
remaining processes for retrieving information or services using this alternate 
embodiment of the access system can be substantially similar to the processes 
explained above in accordance with Figures 1-9. 

Alternate embodiments also exist for the 64-bit type 1 RF tag and the 
256-bit type 2 RF tag discussed above in accordance with Figure 4. For example. 
Figure 14 is a schematic diagram illustrating the assembly of a unique 64-bit type 1 
RF tag data structure 1402 in accordance with one such alternate embodiment. The 
64-bit type 1 RF tag has a 40-bit unique code portion 1404 that is arranged in the 
structure of portion 1406 for use in the UTC. The RF tag code portion 1308 of the 
UTC shown in Figure 13, however, contains 64 bits of information, not 40. 
Therefore, there is a 24-bit reserv^ed portion 1408 that is combined with the RF tag 
code portion 1406 to create the entire 64-bit RF tag code portion 1410 that is used 
with the UTC. 

Figure 15 is a schematic diagram illustrating the assembly of a 256-bit 
type 2 RF tag data structure 1502 in accordance with an alternate embodiment. The 
256-bit type 2 RF tag memory can include 256-bits of EEPROM organized into 
eight pages 1504 of 32 bits each. The 256-bit RF tag can contain a serial number 
portion 1512, a password portion 1514, a reserved portion 1516, and a configuration 
and password portion 1520. The 256-bit RF tag can also contain a unique 64-bit RF 
tag code portion 1506 on pages 4 and 5 that will be used to create the UTC. The 
relationship of the eight bytes contained in pages 4 and 5 to the UTC data structure 
is shown by the relationship portion 1508. Depending on the operation mode and 
the configuration, pages 6 and 7 can vary. Byte configuration 1530 represents one 
configuration that can be used for the various bytes of information contained in the 
data structure 1502. This byte configuration includes a one-bit Manchester code 
portion 1532, a two-bit RF tag mode portion 1534, a one-bit password mode portion 
1536, and four one-bit read and/or write portions 1538. In yet other embodiments, 
other RF tags with other data structures, memory capacity, and security features 
may be used to accomplish the same purpose as the type 2 RF tag. 

Those of skill in the relevant art will appreciate that the access system 
disclosed in accordance with Figures 1-15 in its various embodiments can be used 
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in commercial and non-commercial embodiments to download advertising and other 
content, perform transactions, or manage data on a computer network such as the 
Internet. For example, a product seller may offer a free "limited usage" RF tag 
(e.g., good for three uses) or a free "clipped usage" RF tag (e.g., 60 seconds of an 
audio track) to distribute audio tracks, movie trailers, or video clips as a method of 
advertising its product. To view the advertising content in this embodiment, a user 
places the free RF tag in the proximity of the reader 120. The application software 
132 obtains the unique codes off of the free RF tag and the RF reader 120, compiles 
a UTC, and sends the UTC via the computer network 140 to the system server 
computer 150. After extracting the free RF tag's unique code from the UTC, the 
system server computer 150 sends thie corresponding URL from the look-up 
database table 152 to the application software 132. The browser 134 is then 
launched with this URL, and the advertising content retrieved from tiie web server 
160 with the URL is displayed on the user's network-enabled device for the user to 
view. 

The access system can also be used in a substantially similar manner 
for pay-per-use sales of audio and video products. In this embodiment, a user can 
piu"chase an RF tag permitting the user to download specific audio and/or video 
content. In one aspect of this embodiment, the RF tag can utilize a secure mode so 
that unauthorized users cannot access the content. In another embodiment, the 
access system can be used to facilitate the download of paid-for software on a user's 
network-enabled device. The user purchases an RF tag from the seller of the online 
software and uses the RF tag on a network-enabled device to automatically retrieve 
and download the software that the user purchased. In an embodiment similar to 
those discussed above, the RF tag could be used to provide the user access to peer- 
to-peer networks. The RF tag in these embodiments can be enabled with a 
decrementing device that decrements the number of uses of the RF tag. The RF tag 
can also include a display component that displays how many times the RF tag has 
been used to download the content, and/or how many more times the tag can be 
used. 

Radio content can also be accessed using the access system disclosed 
herein. In this embodiment, a special RF tag is used that accesses the appropriate 
radio content on a server computer and plays the audio content on the user's 
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network-enabled device. In this embodiment, a user can listen to Internet radio 
stations using his or her ovm personal presets stored on the system server computer 
independent of the location of the user or the kind of network-enabled device being 
used. In addition, special radio station RF tags can locate and store new and 
interesting radio stations and programs. 

Various methods can be employed to distribute the different RF tags 
used in the access system. For example, an RF tag vending machine or an RF tag 
kiosk can be located in various public places or stores for dispensing the RF tags to 
purchaser/users. These RF tags can be pre-encoded with unique codes linking them 
to various URLs and other resources, such that purchasers/users can select from the 
RF tags according to which tag provides the service, information, or content desired. 
Alternatively, the kiosk or vending machine can provide a system that enables the 
purchaser/user to personalize the RF tag by recording user specific links and other 
personal presets for the RF tag in the system server computer. 

In addition, "Blank" RF tags can also be stocked that are not yet 
printed with the various attributes that permit different types of network access. 
The vending machine or kiosk can be fitted with an RF tag read/write device so that 
a personalized user interface with personal presets can be encoded onto the RF tag 
by the user/purchaser. The vending machine can also be fitted v^th a camera, 
keyboard and/or microphone to further personalize the RF tag with personal audio 
recordings, a photograph, or a picture or video linked to the RF tag. After the user 
selects the desired attributes of the RF tag, and the payment and transaction is 
confirmed by the system server computer, the combination of the imique RF code 
and the selected attributes are embedded in the RF tag and the vending 
machine/kiosk will print the RF tag with appropriate graphics and distribute it to the 
user/purchaser. 

Payment for the various RF tags sold or dispensed through the 
vending machine or kiosk can be done either online (credit card, banking card) or 
offline (smart card, banking card or an RF tag prepaid debit card). When the RF tag 
is paid for, the system server computer will store the link between the user's 
payment data and the unique RF tag identification code as a metfiod for 
auflienticating the user when the RF tag is subsequently used. 
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In an alternate embodiment of the access system, shops, museums, 
and other establishments can be fitted with RF readers near products or venues of 
interest. When a selected RF tag is placed on such an RF reader, the infonnation on 
the particular product or venue is stored on the system server computer's look-up 
database under the unique RF code of that particular RF tag. Later, the user can use 
the RF tag on any network-enabled device to access and display the product or 
venue information, to compare products, or take another (interactive) look at that 
museum exhibit at leisure. 

Unlinked RF tags are also available in an embodiment of the access 
system. This RF tag initially has no link to any application, URL, or transaction on 
the system server computer. Via a special service performed by the system server 
computer, a user can link the RF tag to specific content like a web site, piece of 
music, greeting card, picture, or movie. In this embodiment, instead of sending the 
application software a URL, the system server computer recognizes the RF tag's 
code as being one that is unlinked, and sends the user a request via the application 
software to visit a specific URL to make the desired links on tiie currently unlinked 
RF tag. Alternatively, the system server computer could send the application 
software a request to provide the linking desired by the user. After entry by the 
user, this desired linking is then written to the RF tag by the RF reader. This 
service allows a user to immediately access the desired links anywhere that the user 
uses the RF tag. The personal links established by the user on the previously 
unlinked RF tag can also be edited subsequent to the initial linking to change the 
content or service accessed by the RF tag. 

The access system can also be used to store and categorize various 
data for a user or a business in another embodiment. In one aspect of this 
embodiment, the data of interest can be stored in a system server computer database 
under a unique RF code. When an RF tag with that unique code is used on a 
network-enabled device, the data will be immediately retrieved. The system can be 
used to store details on an employee, medical patient, or other selected person to be 
recalled by the user independent of the location or network-enabled device used. 
This infonnation can be used for security purposes, persoimel records, or for 
personal information like gaming levels, stock portfolios, or frequently and/or last 
used phone numbers. Similarly, the system can be used as a file/directory 
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management device. Instead of searching archaic records and old electronic files, or 
trying to remember the file name that the document was saved under, business or 
personal documents can be linked with an RF tag for easy access and document 
management without having to go through the arduous task of finding a particular 
storage site. 

The access system can also be used to reduce on-time departure 
problems in public transit systems that may result from passengers not being aware 
of current departure status. For example, if a passenger is given a boarding pass 
that includes an RF tag, the passenger can use the RF tag at various kiosks located 
within a terminal to easily obtain current departure information. This relieves the 
passenger of relying on a public address system to obtain a change of departure 
information. 

The access system can also be used to create a user's personalized 
computing environment regardless of the remote network-enabled device that the 
user happens to be located at. The personalized computing ofiBce or information of 
the user is stored on the system server computer, and an RF tag is used to retrieve 
and display this personalized data on a remote network-enabled device. For 
example, if the user is using a network-enabled device in a shared or rented office 
space, an RF tag can be encoded with personalized computer environment settings 
that can include choice of language, personal data like address books, and email 
addresses and software applications. The RF tag can also be used to provide the 
user with access to personal applications when using a remote network-enabled 
device. 

Those of ordinary skill in the relevant art will appreciate that the 
access system can also facilitate advertising over a computer network in various 
embodiments. For example, a company can distribute free RF tags to users 
whereby placing the RF tag in the presence of an RF reader takes the user directiy 
to the target advertising information the company wants the user to see. Similarly, 
the RF tag can be used to provide the user with almost instant access to an 
advertiser's on-line product catalogue. In this way, the user can research and 
compare the product in the comfort of the user's own home on his or her own time. 
The RF tags distributed to consumer users with direct links to advertising web sites 
can also include information directing the user to the nearest branch or outiet that 
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sells the advertised products. The free RF tags can also permit recipient users to 
retrieve and download freeware onto the user network-enabled devices, wherein the 
content of the freeware contains advertising related to the company's products. 

As an adjunct to the advertising function, the access system can also 
be used as a business card. Instead of distributing paper business cards, a 
businessperson can create and distribute RF tag "business cards" to clients. When 
placed in the proximity of a reader, the businessperson's contact details and email 
address will immediately be displayed to the client. This RF tag embodiment can 
convey a great deal more information to the client than could be included on an 
ordinary business card. A pre-addressed email screen could also be displayed that 
would allow the client to contact the business person by simply typing a message 
and pressing "send." 

Those of skill in the relevant art will also appreciate that the access 
system disclosed herein can be employed as a useful resource-locating tool. For 
example, an RF tag can be included when a user purchases a particular product. If 
needed later, the user can use the RF tag to bring up details on the product such as 
service information, specifications, safety records, logistics, user manuals, parts and 
service catalogs, or shipping and tracking information. In addition, this information 
can be linked to online purchases of other related items. Similarly, the RF tag can 
be linked to direct customer service support whenever the user has problems and/or 
questions regarding the product or service. Warranty registration can also be 
facilitated with the access system by using an RF tag to identify a product or service 
and allowing the purchaser of the product or service to perform the warranty 
registration procedures online with the RF tag from the purchaser's own network- 
enabled device. 

The RF tag can be used for product sales documentation in a 
substantially similar maimer. For example, an RF tag can be written with extra 
information at the point of purchase so that the product manufacturer, purchase 
date, purchase amoimt, sales outlets and other purchase specifics can be linked to 
the RF tag and stored on the system server computer. This guarantees that the 
customer always has access to the correct purchase information, product updates, 
frequently asked questions, etc. The point of purchase can also be fitted with an RF 



-25- 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 PCT/USOO/32798 

tag printer to further personalize the RF tag with pertinent purchase and/or product 
information. 

In addition to the useful functions outlined above, the access system 
can also provide useful authorization fxmctions for Internet or other computer 
network-related transactions. For example, financial institutions (banks, brokers, e- 
conunerce payment systems) can use the RF tag to confirm authorization for online 
payments or to access other paid-for online services, by using one of the secured 
embodiments discussed above. The RF tag can also be used to authorize an online 
email system, or as a prepaid debit card. In one aspect of this embodiment, an RF 
tag can be purchased with a value amount (e.g., in time, money, number of 
accesses, etc.) which can be deducted upon authorization. This amount can be 
stored on the RF tag itself or on the system server computer. The RF tag can be 
fitted with a small display that displays the amoimt of value left either on the RF tag 
itself or on a network-enabled device. In a further authorization embodiment, an RF 
tag can be used with the access system as a gambling device that acts as a debit card 
that automatically deducts or adds credit to a gambler's account. 

The access system can also be used as a purchasing tool in alternate 
embodiments. For example, online services such as magazine subscriptions, market 
research, etc., can be purchased by a user by purchasing an RF tag that is linked to 
the selected content. The system can also be used to make Internet phone calls 
using a familiar user interface and personal presets independent of the location of 
the user or the kind of network-enabled device being used, by storing the user 
interface and presets on the system server computer and accessing them with an RF 
tag. Similarly, the access system can be used to make videoconference calls using a 
famihar user interface with personal presets. The system can also be used by 
communication companies to offer a complete personalized phone or 
videoconference service using the RF tag as a calling card. 

The access system can also be used as a global positioning system 
(GPS) guide that directs a user to businesses and other services in one embodiment. 
In tius embodiment, the RF tag's unique code will direct the system server computer 
to send the user's network-enabled device the parameters of the location the user 
desires to go to. The user's network-enabled device can then use these parameters 
along with the current location parameters of the user (acquired from a typical GPS 
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system) to provide the user with directions to the desired location - for example, a 
store, restaurant, or other service provider. 

In yet another embodiment, the access system can be used to 
distribute coupons or other product information to a store customer. In one aspect 
of this embodiment, the customer could present an RF tag to an RF reader upon 
entering the store, or an RF tag carried on the customer's person could be 
automatically read by an RF reader as the customer enters the store. Alternatively, 
the RF tag could be read as the customer approaches selected products within the 
store. Either way, in response to receiving the RF tag's unique code, the server 
computer can cause a telephone call or page to be placed to the customer's cell 
phone that audibly displays product coupons or other product information to the 
customer. Altematively, the server computer can cause paper coupons to be 
automatically printed-out for the customer to pick up at a kiosk located within the 
store. 

As part of the manufacturing of the access system components, the RF 
reader 120 will be acceptance tested by an RF reader test unit. The RF reader 120 
can be connected to this test unit with a USB connector. The test unit will check 
the hardware functionality, and a test RF tag will be used to make contact with the 
system server computer 150. The system server computer 150 will register a new 
RF reader code and send this new unique RF reader code to the RF reader's 
programmable memory via the test unit. The unique code associated with this 
particular RF reader 120 will then be stored on the database component of the 
server computer 150. Tlie test unit will have secure connection to the server 
computer 150, Both the RF reader test unit and the test RF tag will be part of a 
manufacturing package tliat can be licensed to manufacturers of the access system 
components described in accordance with Figure 1. 

Many aspects of the embodiments discussed above are also described 
in enabling detail in the "Chippo System Specification for Personal Computer 
Systems," version 0.73, dated July 5, 2000, which is included herein as Appendix 
A. From the foregoing it will be appreciated that although specific embodiments of 
the access system have been described for purposes of illustration, various 
modifications may be made without deviating fi-om the spirit and scope of the 
invention. Accordingly, the invention is not limited except by die appended claims. 

-27- 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 



PCT/USOO/32798 



APPENDIX A 



28 

SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 



PCT/USOO/32798 




TECHNOLOGIES 



Chippo System Specification 
for Personal Computer Systems 

Version 0.73 
July 05. 2000 



29 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 PCT/USOO/32798 

Chippo System Specification 
For Personal Computer Systems 

1 . Document objective and revision history 3 

2. System Architecture and Components overview 4 

3. System Requirements 4 

4. Chippo Reader 5 

5. Chippo Token 6 

5.1. Chippo - 64,Bit 7 

5.2. Chippo - 256 Bit 8 

6. CHAPP-Server Communication Protocol 9 

7. Chippo Application Software (CHAPP) 12 

7.1. CHAPP Functionality 1 2 

7.2. CHAPP User Interface 17 

7.3. CHAPP Installation 17 

7.4. Registration Chippo 18 

8. Chippo Server 19 

8. 1 . Chippo Server Architecture 1 9 

8.2. Routing Application and Look-up table 20 

8.3. The Chippo Database 23 

8.4. Pop-up Advertising Application 24 

8.5. Lookup Table Creation & Maintenance Application 24 

8.6. Datamining Application + Customer website 24 

9. Manufacturing & Security 25 

9. 1 . Reader Manufacturing Process 25 

9.2. Security 25 

10. Secure Chippo system 26 

1 1 . Related Documents 27 



30 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 



PCT/USO0A52798 



1. Document objective and revision history 
Objective of the document 

This document specifies the Chippo System for Personal Computer environments. The specification 
describes PC Software attributes, Ser\-er applications, the protocol definition, t}-pes of transactions, 
t}*pes of Chippo tokens and Database seaip. This specification is to be seen as a User Requirement 
Specification. It is intended that this specification will be accompanied by a Technical Requirement 
Specification. 

Revision history 

Version L3 - March 17, 2000 

Includes secure transaqtion process and LTC definition. 
Version 1.4 - May 26. 2000 

Includes server applications and updated CHAPP - Server protocol. 
Version 0.7 - June 23, 2000 

Includes changes in the user registrarion process and reader identification resulting in several changes 
throughout the document. Updated LTC definition and CHAPP - Sen-er protocol. Versioning is 
brought in line with other documents: < 1 .0 is not final. 

Version 0.71 - June 27, 2000 
User registration process changed. 

Registration Chippo added. Change in idProduct of the reader. 

Version 0.73 - July 05, 2000 
All flow charts updated. 



Future updates will include detailed User Interface dialogs 
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2. System Architecture and Components overview 

The Chippo system allows users to shortcut and simpiiH* their Internet activities by eliminating the 
need to remember, tj'pe, or mouse click to a website or server. The users simply throws the Chippo on 
to the Chippo Reader, and the Chippo Application Software, via an Internet or network enabled 
device, will take the user directly to the desired website or ser\'er witliout the hassle of t>'ping, clicking 
or memorizing an URL address. The diagram below depicts the Chippo system and its main 
components. 



Chippo-Reader 



Antenna 



RFID 
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TX 





Rp^ Ffffgyyig Radm Fnaumv Transoetygf 
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• ReadWriie 256 W verston . Plug and Play Dus-DOwe rea 

• Read onhr M tjil version . Read / write caoaDiiiiie& 

• Communication 1 25 KHz • unque 32 cxt code 



USB 



PC 




Chippo 
Server 



I interm 



Iniemei Enabled Devce 

• Runs Web Browser 

• Runs CHAPP 

• Sends unique cooe 
10 tne Chippo Server 



Customer 
Server 



Corpofale Services 

• Translates unique code 
iniotransaciion(s) 

• Redirects the tirowset of 
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The Chippo system consists of 4 main building blocks and 2 enabling blocks. 

Building blocks: 

- Chippo Token 
Chippo Reader 

- CHAPP Software 

- Chippo Server + Software 
Customer Serv'^er + Software Enabling blocks: 

- Personal Computer (PQ 
Internet connection 



3. System Requirements 

Personal Computen 

Internet Connection 
• Web Browser (Internet Explorer 5, Netscape 5, or later) 

- Free USB port 

- CDROM Drive 

- Windows 98 or \X'indows2000 
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4. Chippo Reader 

The Chippo Reader will connect to the PC via USB. 

It will connect to the USB host as a Human Input Device (HID Class). 

In the standard device descriptor 2 ID codes of 2 bytes each will describe the device: 

- idProduct 

Defined by Chippo Technologies 
idVendor 

Defined by the USB Implementers Forum 

In the standard device descriptor 2 index codes of 1 byte each wi!! point to information about the 
manufacturer of the reader and product specific information: 

- iManufacturer 

Will point to. a string descriptor describing the manufacturer 
The string will be 1 byte allowing 256 different manufacnirers 
iProduct 

Will point to a string descriptor containing product specific information, this will include the 
full .part number of 5 Bytes (hex-dec). The full content of the string is to be detmed 
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5. Chippo Token 

Chippo tokens come in three different versions: the 64-bit version, the 256'bit version and the 2048-bir 
version. 

In this document Chippo Tokens are also referred to as "Chippos", 

The 64 bit Chippos are mainly used for non-secure applications like advertising, samplers of 
Audio/Video, greeting cards, etc 

The 256 bit Chippos are used for applications that require securit\'. These Chippos can not be copied 
and can be authenticated by die CRAPP softNvare and the applications running on the Chippo ser^-er 
and the customer ser\'er. 

The 2048 bit Chippos will be used to distribute data for off-line use like business cards. The 
specificanon of these Chippos is not pan of this document. 



Chippo Specirication 


Memory | Type 


RO/RW 


Password 


Off-line use 


64 1 1 


RO 


No 


No 


256 1 2 


RW 


Yes 


No 


2048 


3 


RW 


No i 


Yes 


bits 





Type 1 and tj-pe 2 Chippo dimensions: 



,2 mm 



0 38mm 




34 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 



PCT/USOO/32798 



5.1. Chippo-64Bit 

The 64 bit Chippo has a 40 bits unique code, allowing 240 = 1,099,511,627,776 unique codes. 
The data structure of the 64Bit read-only Chippo and translation to the UTC: 



rr 



Chippo Data < 



DOOi DOl i 0021 D03 
D10iD1i;Dl2iDl3 



D20:D21 :D22: D23 
□30 j 031 i D32i D33 
D40 \ D41 i D42 ! 043 
0501051 10521 053 
06Cl06liDo2;D63 
070 \ 071 i 072 \ 073 
080 I 0811082)083 
O90 i 091 I 092 i 093 



PC0:PC1!PC2:PC3 



PC0-3BColumn Parity 



PC 
PI 
P2 
P3 
P4 
P5 
P6 
P7 
P8 
P9 



SO 



Header Bits 



P0.9=Une Parity 
SO=StopBil set to "0" 



1000=000. DOI^COI. DQ2=C02. D03=CQ3. 013=004. 012=005. 093-039 1 



Byte 


8117 


Bits 1 Btt5 ( Bit4 1 BH3 


Bit2 


Bill 1 BitO 


10 


007 


COS 1 005 j C04 i 003 
Cl4jC13ICl2iC11 


002 


C01 j COO 


11 


015 


010 


C09jC08 


12 


C23 


C22|C21 iC20|C19 


018 


017 C16 


13 


031 


C30|C29jC28jC27 


C26 


C25IC24 


14 


C39 


C3B i 037 i 036 1 035 
0 : 0 j 0 1 0 


034 1 033 i 032 


15 




0 


0 I 0 


16 


0 


0 j 0 1 0 1 0 


0 


0 1 0 


17 


0 . 


0 1 0 ! 0 ' 0 1 


0 


0 1 0 



Part of UTC 



The Chippo data of 40 bits will be pan of the Unique Transaction Code (UTQ that will be sent to the 
Chippo Ser^-er. The 16 remaining bits reserved in the UTC for Chippo info will be set to "0" (Byte 15 - 



Coding of the 40 bits will be decided on a per case basis. The coding of the 64 bit Chippos will be 
agreed with the supplier. A separate document will specify the rules for protecting these codes. 
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5.2. Chippo - 256 Bit 

The 256 bit Chippo has a 64 bits unique code, 

allowing 264 = 18,446,744,073,709,551,616 unique codes. 

The memor)' of this Chippo consists of 256 bits EEPROM and is organized in 8 pages of 32 bits each. 
Depending on the operation mode the contlguration of these pages and the content of Pages 4-7 can 
differ. 



Page 


Content 


0 


Serta! Number 


1 


Password RWD 


2 


reserved 


3 


8 bit Config and'24 bit Password 


4 






5 


1 


Chippo Data 


6 




7 







The 256 Bit Chippo can operate in different modes for the different applications. 
The present Chippo applications will use the following configuration setting: 



Connguration Byte 256bit applications 




Bit? 1 BH6 1 Bits 1 Bit4 


Bit3i Bit2 


Biti : BilO 


0 f 1 i 1 i 0 


0 ■ 1 


1 1 0 


66, 



Manchester Code 

Hitag 2 mode 

Password mode 
Page 6 and 7 ReadA/Vrite 
Page 4 and 5 Read Only 
Page 3 Read Only 
Page 1 and 2 ReadAA/nte 



Page 4 and 5 contain the code that will be part of the UTC to be sent to the Chippo Server. The 
translation is as follows: 



Chippo 


Pa(9e4; 


Byte 3 1 Byte 2 1 Byte 1 1 Byte 0 


Pa^e 5: 


Byte 7 1 Byte 6 i Byte 5 1 Byte 4 



Chippo 




UTC 


ByteO 


^ 


Byte 10 


Bytet 


► 


Byte 11 


Byte 2 


► 


Byte 12 


Byte 3 


► 


Byte 13 


Byte 4 


► 


Byte 14 


Byte 5 


► 


Byte 15 


Byte 6 


► 


Byte 16 


Byte 7 


► 


Byte 17 
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CHIPPO START 
TR.\NSACTION START 
CHIPPO STOP 
TRANSACTION STOP 
NEW" USER 
USER REGISTR-\TION 
AD POP-UP 



<CH.\PP to Sen-er> 
<SerA-er to CRAPP> 
<CHAPP to SerA'er> 
<Sen*er to CRAPP> 
<CHAPP to Ser\-er> 
<Ser\'er to CR^PP> 
<Ser\'er to CHAPP> 



CHIPPO START rCHAPPtn S^rv^Pr^ 

CHAPP will send the Unique Transaction Code (UTQ of 136 bits containing 4 codes plus parameters 
to the Chippo Sen-cn 

- 16 bit Reader ID code (= idProduct) 
32 bit User registration number 

- 64 Bit code of the Chippo 

- 16 Bit CHAPP Version 
Parameters: 

- CHAPP indicates that this a "stan": diis means that the Chippo has just been put on the reader 
The Unique Transaction Code (UTQ: 



|Byte 


1 Bit7 


1 Bits 1 Bits 1 Bit4 


1 Bit3 


1 Bit2 


1 Biti 


1 BitO I 


0 


P07 


P05 


P05 


P04 


P03 


P02 


P01 


POO 


1 


P15 


P14 


P13 


P12 


P11 


P10 


P09 


P08 


2 


R07 1 R06 


ROS 


R04 


R03 


R02 


ROl 


ROO 


3 


R15 


R14 


R13 


R12 


R11 


R10 


R09 


ROS 


4 


R23 


R22 


R21 


R20 


R19 


R18 


R17 


R16 


5 


R31 


R30 


R29 


R28 


R27 


R26 


R25 


R24 


6 


C07 


COS 


COS 


C04 


C03 


C02 


C01 


COO 


7 


CIS 


C14 


C13 


C12 


C11 


CIO 


C09 


COS 


8 


C23 


C22 


C21 


C20 


C19 


C18 


C17 


C16 


9 


C31 


C30 


C29 


C28 


C27 


C25 


C2S 


C24 


10 


C39 


C38 


C37 


C36 


C35 


C34 


C33 


C32 


11 


C47 


C46 


C45 


C44 


C43 


C42 


C41 


C40 


12 


CSS 


C54 


CSS 


C52 


C51 


C50 


C49 


C48 


13 


C63 


C62 


C61 


C60 


C59 


CSS 


C57 


CSS 


14 


V07 


V05 


VOS 


V04 


V03 


V02 


VOl 


voo 


15 


V15 


V14 


VI 3 


V12 


VII 


VI 0 


V09 


VOS 



"V Reader ID 
(=idProduct) 

User registratior) # 



> Chippo Code 



CHAPP Version 
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TRANSACTION START rServer to CHAPPY 

The Server will send a URL plus parameters to the CHAPP sofnvare 

Parameters: 

- Field indicating diat there is a "STOP" transaction. This means that CHAPP has to send a 
CHIPPO STOP code once the Chippo is removed from the reader 



CHIPPO STOP (CHAPP to .9prvPr> 

Tlie CHIPPO STOP command will be send to the Chippo ser\'er if it was requested bv the sen-er in 
the parameters of the TIL^NSACTION START command. CHAPP will send the Unique Transaction 
Code (UTQ of 128 Bits containing 4 codes plus parameters to the Chippo Ser\-er: 

16 bit Reader ID code 

32 bit User registration number 

- 64 Bit code of the Chippo 

- 16 Bit CHAPP Version 

Parameters: 

- CHAPP indicates that this a "stop": this means that the Chippo has just been removed from 
the reader 



TRANSACTI ON STOP (^^rver to CHAPP) 

The Sen-er will send this command to CHAPP once it has received the CHIPPO STOP command. 
The command includes a URL (www.chippo.com) and a parameter bne. 
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MEW USER rCHAPP to Serx^er^ 

Once CHAPP is installed and a reader is connected for the first time, CHAPP will ask the user to pur 
on the registration Chippo. CHAPP will read the User Registration Number from the Chippo and send 
the <New User> command to the sender comprising die data below. The ser^-er will respond with the 
"user registration" command. 



B)2e 
0 


Bit7 I Bite 


Bits 1 Bit4 1 Bit3 t Bit2 1 Bit1 i BitO 1 


P07 
P15 


P06 
P14 


P05 1 P04 1 P03 P02 j P01 1 POO 
P13IP12IP11 PlOiPOgiPOS 


1 


2 


V07 
V15 


V05 
V14 


V05 } V04 j V03 i V02 ! VOI i VOO 
V13l V12I V11 1 V10I V09' VOS 


3 


4 


M07 1 M06I M05 1 M04 1 M03 1 M02 1 M01 : MOO 


5 


A07 
A15 


A06 j A05 1 AD4 A03 j AQ2 | AOH AOO 
A14!A13iAl2 All j A10! A09I AOS 


6 



idProduct 
idVendor 
i Manufacturer 
CHAPP Version 



CHAPP will await the confirmation by die ser^^er and once received it \vil\ store the user registration 
number on the PCs HDD for use in all fuoire UTCs. 



USER REG ISTRATION rSen^er tn TH APP) 

Once the "new user" command is received the ser^-er will check the validit^^ of die reader information 
the CHAPP version and the user registration number. ' 
The user registration number is die unique 32 bits serial number of the Hitag2 Chippo. 

The ser\-er will send back the URL of the Chippo Reader Registnuion site. 

Here the registration application will guide the user through the registration process. See Chapter 9 4 
Registration Applicauon. 

^^^'^"^ ^""^^ Registration" command as a confirmation to CHAPP. 

CHAPP can now locally store the user registration number. 



AD PQP^IJP ^ S^^^rer tn CHAPP) 

The Server will send a URL plus parameters to die CHAPP software 
Parameters: 

- Field to indicate this is a pop-up ad URL 
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7. Chippo Application Software (CHAPP) 

Functional requirements CHAPP: 

1. Sends 128-bit UTC to the sender (see flowchart for transactions) once a Chippo is put on the 
reader 

2 Sends (on request of the sen-er) a Chippo stop command to indicate thnr a Chippo was 
removed trom the reader 

Generates an "active icon" in the Windows Taskbar 

ReTdT^^^ messages in case of malfunction or use of an unauthorized Chippo or Chippo 

Instructs the Browser to display certain website(s) 
User can specif)' preferred browser program (Netscape or IE) 

7. Handles secure autheniication requesK from die customers application 

8. Reads and writes passwords on the Chippo 



3. 
4. 

5. 
6. 




Commai 





128 bit UTC 


CHAPP 






Transaction Commarids / 


1 4 ♦ parameters 
inds^ |Confirmatior\ 


Browser 


URL nf nihi»r address 



Content or tppkation 




7.1. CHAPP FunctionaHty 

The next six flowcharts show the basic functionaJit\' of the CHAPP program. 

1. <CHIPPO START>. CHAPP to Server. 

?"5f^^ ^ P"^ °" ^"der CHAPP ^viIl read the Ch.ppo code from the token and create the 

UTC ^>'g«';»"g J^to^d User Registration Number, the Chippo Reader Code (is idProdua) and the 
version ofthe CHAPP Software. This will be sent to the ser^-er. ame 

2. <TRANSACTION START>, Sen.-er to CHAPP. 

TTie ser%'er will send back a URL and a parameter byte. CHAPP will start the browser (if not already 
ninning and wjM give an indication on the reader via the LED's. 

<CHIPPO STOP>, CHAPP to Ser^'er. 

CHAPP will send the UTC j parameters indicating this is a Stop command to the Chippo Ser.'er once 
a Chippo IS being removed from the reader. CRW will only do this if this was requested by die 
Server in the <TRANSACnON START> command. equesiea o> die 
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3. <TR.\xNSACnON STOP>, Sender to CHAPP. 

The Sen'er will send this command to CHL\PP once it has received the CHIPPO STOP command. 
The command includes a URL (www.chippo.com) and a parameter bne. 

4. <NE\V USER>, CHAPP to Sen-er. 

Once CR\PP is installed and a reader is connected for the first time and a user has put the registration 
Chippo on the reader, CHAPP vvill send a <NE\V USER> command to the sender. The ser^^er will 
respond with the <USER REGISTRATION> command. CHAPP will await the confimiation by the 
ser\'er and once received it will store the user registration number on the PCs HDD for use in all 
future UTCs. 



5. <USER REGISTRATION>, Ser^-er to CHAPP 

Once the <KEW USER> command is received the sender will check the validit\' of the reader 
information, the CHAPP version and the user registration number. The sen-er will send back the URL 
of the Chippo Reader Registration site. Here the registration application will guide the user through the 
registration process. See Chapter 8.3 User Registration Information. 

men OK the ser^'er will send back the <USER REGISTRAT10N> command as a confirmation to 
CHAPP. CHAPP can now locally store the user registration number. 

6. <AD POP-UP>, Sen-er to CRAPP 

The Serx-er will send a URL plus parameters to the CHAPP software with a field to indicate this is a 
pop-up ad URL. The ad should appear on top of the other windows. 
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7.2, CHAPP User Interface 

WTien the CHAPP logo on the W indows taskbar is double clicked CHAPP will displav a wmdow 
containing the following buttons: * 

• Update CHAPP Software 

• Update registration 

• Information: 

• CHA?V Version 

• Legal Information 



7.3. CHAPP Installation 

CHAPP will be installed from a CDROM. this CDROM contains: 

• setup.exe Installs the CHAPP Sofm-are 

• readme.ixt Gives installation information 

?pfin"i^' n'"'""'"*?,".' u"'"''-'" °' ''"^^ ^'^P'^'-^'^d SW license agreement (to be 

fo?r ^'^V-.^™ be starred and CHAPP .-.11 check for a connected reader and 

^^'U1 ask tor the registmnon Ch.ppo to be put on the reader. It will get the 32 b.ts unique code from the 
reg.stninon Chippo and w.i get Ac reader code from the reader and will send th.s to the ser^-er us.ng 
the New User command (see Oiapter 7.). ^ 
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7.4. Registration Chippo 



The registration Chippo is used when registenng yourself as a new user or when vou want to 
change/update your registration info. It will also provide entrance to the Chippoxom site for 
personalized sen'ices. 

The registranon Chippo is a 256 bit (Philips Hitag2) Chippo. 

The serial number in page 0 of the tag will be used as the user s registration number. 

The memor}' map of the registration Chippo: 



Paqe 


Content 


0 


Serial Number 


1 


Password f?WD 


2 


reserved ' 


3 


8 bit Confia and 24 bit Password 


4 




5 


reserved for future use 


5 


7 





Tlie configuration b\Te of the registration Chippo: 



Configuratron Byte 256bit appiications 




Bit? : Bits J Bits : Bft4 


Bit3 i Bjl2 1 Biti i BIIO 


0 : 1 ; 0 1 0 


0 i 


1 : 


1 : 0 


-6 



- Manchester Code 
' Hitag 2 mode 

Password mode 

Page 6 and 7 Read / Write 

Page 4 ar^d 5 Read / Write 

Page 3 Read Only 

Page 1 and 2 Read /Write 



Pages 4 to 7 \vill contain the following code when delivered to the user: 



Location 


HEX value 




Page 4: 


FF-FF-FF- 


FF 


Page 5: 


FF-FF-FF- 


FF 


Page 6: 


FF-FF-FF- 


FF 


Page 7: 


FF-FF-FF- 


FF 
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8. Chippo Server 

8.1. Chtppo Server Architecture 

The Chippo Sen'er Archirecture contains two main Databases: 

• Look-up table 

• Chippo Database 

Around these databases a number of applications are running: 

• Routing Application 

• Pop-up advcnising Application 

• User Registration Application + Reader validit\* 
Customer synchronization Application check 

• Datamining Application Customer website 

Chippo Ser\*er Architecture: 



Lookup Tabit 



lookup Tsblt 



Pop-up ad Appiicat«n 



fafllill t l OH App l B Bt lO ft 




Chippo Oata&ast 

- Transsotons 
• User ReQisirsbon 

• RcBdflT tnlonriBtion 

• ManulBCturer into 

•Etc. 



Oetammtng Appneation 
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8.21 Routing Application and Look-up table 

The Routing application main hinctions: 

• Matches pan of the UTC (Unique Transaction Code) it receives from CHAPP with a specific 
URL in the Lookup Table 

• Check the Chippo Reader and Chippo codes on validit}* 

• Create the parameter b\Te 

• Sends the corresponding transaction (URL + paramerer bne) back to the CHAPP that 

originated the UTC 

• Sends the transactions to the Chippo Database 
Look-up Table contents: 



UTC 


13 ! i 


7 \ 11 


10 1 9 


1 a 1 - 


• 1 6 



URL 


1 Psramctcra 


355 1 2S4 1 352 1 


717 t 251 1 250 1 245 | 248 


1 1 Bvte 








7 1 6 1 5 1 


4 1 3 1 2 1 1 1 0 1 



Parameters: 



0 
1 
2 
3 
4 
5 
6 



255 



Reserved 

This transaction needs to be stopped when the Chippo is removed 

The URL is a pop -up ad 

CHAPP version needs to be updated 

LTC was not valid 

Passw^ord Chippo 



The performance of the Routing Application and the Look-up table is of high importance: they 
determine the speed with which the consumer's browser is redxreaed to the corresponding web site. 

The functionality of the ser\'er application is explained below. 



1. <CHIPPO START>, CR^PP to Server. 

Once a Chippo is put on the reader CHAPP will create and send the LTC to the server. The routing 
application will lookup the URL and the parameters that conrespond to the UTC. This will be sent 
back to CHAPP via the <TRANSACTION START>, Sen-er to CHAPP, command. 

Z <TRANSACnON STOP>, Sen-er to CHAPP. 

The Server will send this command to CHAPP once it has received the <CHIPPO STOP> command. 
The command includes the www.chippo.com URL and a parameter bne. 
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3. <USER REGISTR.\T10N>. Sen-er ro CHAPP 

Once the <NE\V USER> command is received from CHAPP rhe ser\-erwill check the vahdin- otxhc 
reader informarion, the CH.'\PP version and the user registration number. The ser\-er will send back 
the URL of the Chippo Reader Registration site. Here the registration applicanon will guide the user 
through the registration process. See Chapter 8.3 User Registration Information. 
WTien OK the ser\^er\vill send back rhe <USER REGISTRATION^ command as a confirmation to 
CH.APP. CHAPP can now locally store the user registration number. 

A. <AD POP-UP>, Ser\'er ro CRAPP 

The Sen-er will send a URL plus parameters ro the CHAPP software with a field ro indicate tiiis is a 
pop-up ad URL. The ad should appear on top of the other windows. 



CHAPP 12B bits iTC 



<CHJPPO START> 



Send URL of Error ptgn 




Lookup Transacton 





r 




Include URL 




"CHAPP updaie' pop-up 



Store TfBnsaciion 
on Chjpoo Swver 






r 


Send URL « 


trenuaion 


panmoitnto 







I 



eTRANSACTKJN STARTa 



CHAPP 



<CHIPPO START> & <TRANSACTION START> 
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<CHIPPO STOP> 



LooKuD Tnnsaann 





Store TrantactMin 
on CtiQoo Server 


1 


1 1 



rsnsaceon { 



Send URL • u«nsaeuan 
pwamners to 

Oui 



I 

JL. 



<TRANSACTION SrOP> 



I 



<CHIPPO STOP> & cTRANSACTlON STOP> 




<USER REGISTRATION> 



1 



CHAPP 



URL Error me&sage Pagv 



<NEW USER> & <USER REGISTRATI0N> 
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8.3. The Chippo Database 
Transac tion information 



The Chippo Database keeps a log file that contains all transacnons done with Chippos. Combined xvuh 
the UserRegistranon Intormanon this provides an enormous amount of usage information. 



Datafields in the Chippo Database: 

1. UTC 

• Reader ID 

- User Registration Number 

- Chippo Code 

- CHAPP version m use 

2. Time & Date of transaction 

3. IP Address of the PC running the CHAPP 

User Re^stration In formation 

The User Registration Applicanon registers users during tlie CHAPP reader installation process bv 
fil ing in a web-based screen. It will receive 9 bytes from CHAPP describing the idProduct idVendo'r 
iManutacnirer and the 32 bits user regisrrat.on number. The application will check if the id Vendor ^^'d 
the user registration numoer are valid. The id\^endor is a fixed code linked to Chippo Technologies 
and issued by the USB IF. The User Registration Number is a unique 32 bits code generated by Ph lips 
Wonductors. The code received from CHAPP should be in beLeen txvo values^hat we ^ ecZe 
Philips. Once checked by the sen-er CHAPP will store the user registration number on the PCs HDD 
Un the ser^-er the registration information is stored in the Chippo Database 

-nie web application will gather the following information to be stored in the Chippo Database. The 
web page will offer three levels of regis tranon: 

Level 1 - minimum required information: 
First Name 
Last Name 
Gender 
Birthday 
E-mail address 

L^el 2 (please fiU in this information to receive Chippos in the mail - please also check your 
name above to correspond with the mailing address) 

Address 

State 

ZIP 

Country 

Level 3 (if you want to do us a favor) 
Marital status (}xs/no/MBA) 
Degree 
Occupadon 
Income 

Phone Number 
Favorite color 
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The database will store some other Chippo related information as well: 

32 bits User Registration Number 
Date of registration 
Modify date 
Reader ID 



8.4. Pop-up Advertising Application 

To be defined in Version 1.1 

On the basis of reader usage stored in die Chippo Database die pop-up advertising application can 
send a specific transaction command to CHAPP. CHAPP will re-direct the browser to display an 
advertising frame on top of the Browsers main screen. See CHAPP-Ser%'er Communication Protocol. 

Example: 



Chippo Pop-up _ gx~| ^ 




8.5. Lookup Table Creation & Maintenance Application 

To be defined in Vprt;tnn 1 1 



8.6. Datamining Application + Customer website 

To be defined in Ventinn 1 ] 
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9. Manufacturing & Security 

9.1. Reader Manufacturing Pr cess 

In the standard device descriptor 2 ID codes of 2 bytes each will describe the device: 
idProducr : pan number 0 - 65536 

id\'endor : defined by the USB Implementers Forum, is a tlxed code 

In the standard device descriptor 2 inde.N codes of 1 byte each will point to information about the 

manufacturer ot the reader and product specific information: 

iManufacturer : will point to a string descriptor describing the manufacturer 
the string will be 1 byte allowing 256 different manufacturers 

iProduct : will pc^int to a string descriptor containing product specific information, this will 
mclude.the tull part number of 5 Bjtes (he.x-dec). The full content of the string is 
to be defined ^ 

Once the Chippo Reader is produced it will be tested at the end of the line bv our CRAI-unit ChioDo 
R^der anutactunng unit). The Reader will be hooked up to the CRM bv the USB connector, lie 
CR-M will check tlie hardware ftinctionalitj- and will check the standard device descriptor 
In a later stage (2001) a Manufactunng Authonzation Chippo Token will be used to make contact with 
the Chippo ier.-er. The serx-er will authenticate die Ch.ppo Token and the Chippo Reader. The CRM 
will have a secure conneaion to the Chippo Ser^'er. Both the CR.M and the .Manufacturing Ch.ppo will 
be part of the manufactunng package and potentiallicensing package. 

9.2. Security 

The user registration system will provide protection on two levels: 

m^n^i^""^' '"'^i^ """'i'" ^'^^ ^'"'^'^ L'SB Implementers Fonam 

(USB IF). This \vt\\ put manufacturers which copy readers including our id\-endor code m 
conflict ^^Mth the USB IF. When the copy product uses a different idVendor code it will not be 
accepted by our servers during the registration process. 

2. The User Registration Number is identical to the serial number of the User Registration 
Chippo token. This number is issued by Philips Semiconductors. Copies of these tokens 
and/or their unique senal numbers will be in conflict with Philips Semiconductors 



53 



SUBSTITUTE SHEET (RULE 26) 



wo 01/50224 



PCT/USOO/32798 



10. Secure Chippo system 
CHAPP Secure Authenticati n. 

For secure authentication of Chippos the customer application will request the Chippo serial number 
and passu-ord from CHAPP. CHAPP will send this to the customer application and as a response 
CHAPP will receive back a new password which needs to be written to the Chippo. 



<PASSWORDREQUEST» 



I 

± 

Cheoc secure MMiecnon 



▼ 

Retd 32-&tt senai rumDcr 
3g-ftrt pes^ of 0 ofCftippo 

I 

^ T 

Svrm cooes to 
oiant no and w«4 
forleedDacK 



J 

Y 

<TOKEN PASSWOR0> 



<NEW PASSWORO 



i 



Reevvefww poiswoftf 




Send Mw oesMTord 
loOnppo 



CHAPP Secure Authentication 



Customeri Server Secure Authentication applicacion: 

At the custferfier side the server can authenticate the Chippo by two means: 

1. The unique 32 bits serial number 

2, A password check 

The customer serv^er sets up a secure connection to the consumers PC (e.g. via SSL). Upon request of 
the customer ser^^er the CHAPP sofnvare will deliver the 32-bit unique serial number and the 32-bit 
password recorded on the Chippo to the customer application (customer app). Once authenticated the 
customer app will send back to CR-IPP the nexv password to be recorded on the Chippo and the 
transaction can take place. 
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<PASSWORO REQUEST^ 



<TDKEN PASSWORDS 



CMAPP 




T 



<NEW PASSWORI> 



Uw* secure comaoion 
fopiM) 




r 















Customer Application for Secure Authertticatton 



11. Related Documents 

Philips Semiconductors Hitag Transponders Rev. 12 February 1999 

EM Microelectronic Marin H41 00 Product Sheet Rev B/ 1 89 1 997 
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CLAIMS 

We Claim: 

1 1. A computer-based method for providing access to resources, 

2 the method comprising: 

3 encoding a computer-readable medium with a code; 

4 storing the code in a database table of a server computer that links the 

5 code to selected data; 

6 distributing the computer-readable medium to a user; 

7 when the user places the computer-readable medium in the proximity 

8 of a reader device, reading the code off of the computer-readable medixmi, and 

9 transmitting the code to a user computer; 

10 sending the code from the user computer to the server computer; 

11 receiving the code by the server computer; 

12 retrieving the selected data linked to the code in the database table; 

13 and 

14 sending the selected data to the user computer. 

1 ' 2. The method of claim 1 wherein the selected data sent to the 

2 user computer is a uniform resource locator for information and/or services content, 

3 and wherein the method further comprises: 

4 launching a browser program on the user computer with the uniform 

5 resource locator; 

6 retrieving the content associated with the uniform resource locator; 

7 and 

8 providing the content to the user computer. 

1 3. The method of claim 1 wherein encoding a computer-readable 

2 medium with a code comprises encoding a radio-frequency identification device 
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3 with a radio-frequency identification code, and wherein reading the code ofif of the 

4 computer-readable medium includes reading the radio-frequency code with a radio- 

5 frequency reader device that transmits the radio-frequency identification code to the 

6 user computer. 

1 4. A computer-readable medium containing a data structure 

2 comprising: 

3 a product identification code portion; 

4 a vendor identification code portion; 

5 a manufacturer index code portion; and 

6 a product index code portion. 

1 5. The computer-readable medium of claim 4 wherein the product 

2 identification code portion contains 16 bits of information. 

1 6. The computer-readable medium of claim 4 wherein the vendor 

2 identification code portion contains 16 bits of information. 

1 7. The computer-readable medium of claim 4 wherein the 

2 manufacturer index code portion contains 8 bits of information. 

1 8. The computer-readable medium of claim 4 wherein the product 

2 index code portion contains 8 bits of information. 

1 9. A method in a server computer system for transmitting data to a 

2 user computer system, the method comprising: 

3 providing a mapping of each of a plurality of codes and corresponding 

4 resource identifiers; 

5 receiving from the user computer system one of the plurality of codes, 

6 the received code being obtained by the user computer system from a computer- 

7 readable medium supplied by a user; 
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8 identifying the resource identifier that corresponds to the received 

9 code based on the mapping; and 

10 sending the identified resource identifier to the user computer system 

11 so that the user computer system can present to the user the resource identified by 

12 the resource identifier. 

1 10. The method of claim 9 wherein the resource is a web page. 

1 11. The method of claim 9 wherein the resource identifier is a 

2 uniform resource locator. 

3 12. The method of claim 9 wherein the resource is an identifier of 

4 a computer file on a computer network. 

1 13. The method of claim 9 including receiving fi-om the user 

2 computer system another code that identifies the user computer system. 

1 14. A computer-based method for allowing users to access a web 

2 page, the method comprising: 

3 reading a code from a computer-readable medium when the user 

4 places the computer-readable medium in the proximity of a reading device; 

5 sending the read code to a server computer system; 

6 in response to sending the read code, receiving a resource identifier 

7 for the web page from the server computer system; 

8 retrieving the web page identified by the received resource identifier; 

9 and 

10 presenting the retrieved web page to the user. 

1 15. The method of claim 14 wherein the device that performs the 

2 reading of the code firom the computer-readable medium includes an identifier and 

3 wherein the sending includes sending the identifier associated with reader device. 
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1 16. The method of claim 14 wherein the server computer system 

2 uses the received code to select a web page. 

1 17. A computer-based method of advertising comprising 

2 distributing, to users who are to view an advertisement, a computer-readable 

3 medium identifying die advertisement so that when the computer-readable medium 

4 is read by a computer system, the computer system automatically retrieves the 

5 advertisement and displays it to the user. 

1 1 8. A method in a server computer system for transmitting data to a 

2 user computer system, the method comprising: 

3 providing a mapping of at least one code and corresponding selected 

4 data; 

5 receiving from the user computer system at least one of the codes, the 

6 received code being obtained by the user computer system from a computer- 

7 readable medium supplied by a user; 

8 identifying the selected data that corresponds to the received code 

9 based on the mapping; and 

10 sending the selected data to the user computer system. 

1 19. The method of claim 18 wherein the selected data is a web 

2 page. 

1 20. The method of claim 18 wherein the selected data is a uniform 

2 resource locator. 

1 21. The method of claim 18 wherein the selected data is an 

2 application program. 



3 22. The method of claim 18 wherein the selected data is an 

4 identifier of a computer file on a computer network. 
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1 23. A computer-based method for allowing users to access web 

2 pages, the method comprising: 

3 reading a code from a computer-readable medium when the user 

4 places the computer-readable medium in the proximity of a reading device; 

5 sending the read code to a server computer system; 

6 in response to sending the read code, receiving the. web page 

7 associated with the read code; and 

8 displaying the received web page. 

1 24. The method of claim 23 including before receiving the web 

2 page and in response to sending the read code, receiving an identifier of die web 

3 page and sending the identifier to a web server system wherein the web page is 

4 received from the web server system. 

5 25. A computer-readable medium containing a data structure 

6 comprising: 

7 a 32 bit serial number portion; 

8 a 32 bit password portion; and 

9 a 32 bit information portion consisting of an 8 bit configuration 

10 portion and a 24 bit password portion. 
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